SANS ISC InfoSec Forums

For all folks using Windows XP, it is advised that you do another Windows Update to ensure that your patches have been correctly updated.

Microsoft stated the following:

"Subsequent to the release of this security bulletin, Microsoft was
made aware that the update provided for Windows XP customers running
the new version of Windows Update, Windows Update Version 5, did not
contain the final release code for the vulnerabilities addressed in
the security bulletin. Microsoft has corrected the update and is
re-releasing this bulletin to advise of the availability of a revised
update available to Windows Update Version 5 customers. Customers who
are utilizing Windows Update Version 4, the vast majority of
customers, are not affected by this revision."

Microsoft has released two documents, available at the links below,
for download that has some excellent information regarding security.
These documents contain excellent information and references to tools
that every administrator could use.

We have received more emails concerning traffic on Port 3072 and some good suggestions as to the cause. If you have any captures of the traffic, please pass them our direction.

Your Daily Phish

A user submitted to ISC today another phishing email scam. This one wanted the victim to change their pin number. As a general reminder, keep in mind which email address, if any, you have given to your financial institution(s) and always verify before you update any information requested via email.
Lorna J. Hutcheson/Tony Carothers